In re. MICHAELIDES 
Application No.: 10/731,629 
Attorney Docket No. : 07002. 0053.NPUS00 

Claim Amendments and Listing of Claims 

This listing of claims replaces all prior versions and listings of claims in the application: 

1. (Currently Amended). A generic system for integrating a target application to 
an authentication system for authenticating users of the target application, the generic system 
comprising a server coupled to a database of configuration information about a login process for 
the target application, the server being programmed to access the database of configuration 
information to conduct the login process with a user of the target application and to use the 
authentication system to authenticate the user and to enable the user to access the target 
application once the authentication system has authenticated the user, the generic system further 
including an administrative application for enabling permitting a system administrator to create 
and edit the configuration information. 

2. (Original). The generic system as claimed in claim 1, wherein the authentication 
system is a centralized authentication system of a business organization, and the target 
application is in a third-party web server coupled by a network to the centralized authentication 
system. 

3. (Currently Amended). The generic system as claimed in claim 1, wherein the 
server is programmed to issue is s uing at least one token to enable the user to access the target 
application once the authentication system has authenticated the user. 

4. (Original). The generic system as claimed in claim 1, wherein a data network 
couples the target application to the server, the server is programmed to receive a Uniform 
Resource Locator including an identification of the target application, and the server is further 
programmed to use the identification of the target application for looking up the configuration 
information from the database. 

5. (Original). The generic system as claimed in claim 1, wherein the server is 
programmed to obtain from the database configuration information defining an inbound 
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parameter, and the server is programmed to receive the inbound parameter from the target 
application. 

6. (Original). The generic system as claimed in claim 1, wherein the server is 
programmed to obtain from the database configuration information defining a natural language, 
and the server is programmed to use the natural language for communication with the user 
during the login process. 

7. (Original). The generic system as claimed in claim 1, wherein the server is 
programmed to obtain from the database configuration information defining an outbound 
parameter, and the server is programmed to send the outbound parameter to the target application 
once the authentication system has authenticated the user. 

8. (Original). The generic system as claimed in claim 1, wherein the administrative 
application is programmed to present a graphical user interface to the system administrator for 
creating and editing the configuration information, and the graphical user interface includes 
pages for listing active and inactive target applications integrated with the authentication system, 
and pages for creating and editing a selected one of the target applications. 

9. (Original). The generic system as claimed in claim 1, wherein the administrative 
application is programmed to present a graphical user interface to the system administrator for 
creating and editing the configuration information, and the graphical user interface includes 
pages for selecting a natural language for conducting the login process, for specifying inbound 
parameters to be received from the target application and outbound parameters to be sent to the 
target application, for configuring at least one authorization setting, for configuring at least one 
token, and for selecting an encryption option for encrypting the token. 

10. (Original). The generic system as claimed in claim 9, wherein the graphical user 
interface includes at least one page for exporting and importing authentication integration 
projects. 
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1 1 . (Original). The generic system as claimed in claim 1 , wherein the administrative 
application is programmed to present a graphical user interface to the system administrator for 
creating and editing the configuration information, the administrative application includes a 
series of action modules for presenting respective pages of the graphical user interface to the 
system administrator, and the action modules are programmed for invoking business logic. 

12. (Original). The generic system as claimed in claim 1 5 wherein the server includes 
a data cache coupled to the database. 

13. (Original). The generic system as claimed in claim 1, wherein the server is 
programmed with a plurality of authentication modules for integrating respective target 
applications to the authentication system, and the server is programmed with an authentication 
module controller for directing user login requests to the respective authentication modules. 

14. (Currently Amended). A generic token-based system for integrating a target 
application on a first server to an authentication system for authenticating users of the target 
application, the generic system comprising! 

a second server coupled to a database of configuration information about a login process 
for the target application, the second server being programmed to access the database of 
configuration information to conduct the login process with a user of the target application and to 
use the authentication system to authenticate the user and to issue at least one token to enable the 
user to access the target application once the authentication system authenticates the user;* 

wherein the second server is programmed to receive a Uniform Resource Locator 
including an identification of the target application, and the second server is further programmed 
to use the identification of the target application for looking up the configuration information for 
the login process from the database ; and 

an administrative application programmed to present a graphical user interface to a 
system administrator for creating and editing the configuration information . 
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15. (Original). The generic system as claimed in claim 14, wherein the second server 
is programmed to obtain from the database configuration information defining an inbound 
parameter, and the second server is programmed to receive the inbound parameter from the 
target application. 

16. (Original). The generic system as claimed in claim 14, wherein the second server 
is programmed to obtain from the database configuration information defining a natural 
language, and the second server is programmed to use the natural language for communication 
with the user during the login process. 

17. (Original). The generic system as claimed in claim 14, wherein the second server 
is programmed to obtain from the database configuration information defining an outbound 
parameter, and the second server is programmed to send the outbound parameter to the target 
application once the authentication system has authenticated the user. 

1 8. (Currently Amended). A method of integrating a target application to an 
authentication system for authenticating users of the target application, the method comprising: 

a system administrator operating a graphical user interface to enter configuration 
information about a user login process into a database, the graphical user interface presenting a 
series of pages of configuration options to the system administrator^ and 

once the configuration information has been entered into the database, accessing the 
configuration information in the database to conduct the user login process with a user of the 
target application; and 

using the authentication system to authenticate the user and to enable the user to access 
the target application once the authentication system has authenticated the user. 

1 9. (Currently Amended). The method as claimed in claim 1 8, wherein the 
authentication system is a centralized authentication system of a business organization, and the 
target application is in a third-party web server coupled by a network to the centralized 
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authentication system, and the login proce s s method further comprising: include s redirection 
of 

redirecting a user login request from the third-party web server to a server accessing the 
database and the centralized authentication system. 

20. (Currently Amended). The method as claimed in claim 18, wherein the 
configuration database includes configuration information for configuring a plurality of 
applications to the authentication system, the target application transmits a Uniform Resource 
Locator including an identification of the target application, a«d the method further comprising: 
include s 

obtaining the identification of the target application from the Uniform Resource Locator^ 

and 

using the identification of the target application for looking up the configuration 
information for the target application from the database. 

2 1 . (Currently Amended). The method as claimed in claim 1 8, further comprising: 
which include s 

obtaining from the database configuration information defining an inbound parameters 

and 

receiving the inbound parameter from the target application. 

22. (Currently Amended). The method as claimed in claim 1 8, further comprising: 
which include s 

obtaining from the database configuration information defining a natural language;* and 
using the natural language for communication with the user during the login process. 

23. (Original). The method as claimed in claim 1 8, further comprising: wherein 
the server accessing the database and the centralized authentication system obtaining is 

programmed to obtain from the database configuration information defining an outbound 
parameters and the method includes 
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sending the outbound parameter to the target application once the authentication system 
has authenticated the user. 

24. (Currently Amended). The method as claimed in claim 18, further comprising: 
which include s 

the graphical user interface presenting to the system administrator 1} pages for listing 
active and inactive target applications integrated with the authentication system, and 2} pages for 
creating and editing a selected one of the target applications. 

25 (Currently Amended). The method as claimed in claim 18, further comprising: 
which include s 

the graphical user interface presenting to the system administrator pages for 1} selecting 
a natural language for conducting the login process, for 2} specifying inbound parameters to be 
received from the target application and outbound parameters to be sent to the target application, 
for 3} configuring at least one authorization setting, for 4} configuring at least one token, and for 
5) selecting an encryption option for encrypting the token. 

26. (Currently Amended). The method as claimed in claim 25, further comprising: 
which include s 

the graphical user interface presenting to the system administrator at least one page for 
exporting and importing authentication integration projects. 

27. (Currently Amended). A method of using an authentication system for 
authenticating users of a target application on a first server, the method comprising! 

maintaining a database of configuration information about a login process for the target 
applicationi^-aml 

using a graphical user interface of an administrative application to generate the 
configuration information to define the login process; and 

using a second server to access the database of configuration information to conduct the 
login process with a user of the target application and to use the authentication system to 
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authenticate the user and to issue at least one token to enable the user to access the target 
application once the authentication system has authenticated the user^ 

wherein a data network couples the first server to the second server, and the second 
server receives a Uniform Resource Locator including an identification of the target application 
and uses the identification of the target application for looking up the configuration information 
for the login process from the database. 

28. (Currently Amended). The method as claimed in claim 27, further comprising: 
wherein 

the second server obtaining obtains from the database configuration information defining 
an inbound parameters and 

the second server receiving receive s the inbound parameter from the target application. 

29. (Currently Amended). The method as claimed in claim 27, further comprising: 
wherein 

the second server obtaining obtains from the database configuration information defining 
a natural language^ and 

the second server using uses the natural language for communication with the user during 
the login process. 

30. (Currently Amended). The method as claimed in claim 27, further comprising: 
wherein 

the second server obtaining obtain s from the database configuration information defining 
an outbound parameter^ and 

the second server sending s ends the outbound parameter to the target application once the 
authentication system has authenticated the user. 

3 1 . (Currently Amended). A method of integrating a third-party web application to 
a centralized authentication system, said method comprising: 
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a system administrator using a graphical user interface to select configuration options 
from a series of pages to define a the login process to be used when a user logs into the third- 
party web application;* 

creating an authentication module for the third-party web application;* 

storing the configuration information in a database;* 

redirecting a user login request from the third-party web application to a server 
containing the authentication module;* and 

upon receipt of the user login request, the server activating the authentication module to 
retrieve the configuration information from the database to conduct the login process and to use 
the authentication system for user authentication; and the» 

issuing a token for enabling user access to the third-party web application. 
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